CVE-2022-49194

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.17.0-rc7

Description A vulnerability in the Linux kernel has been identified, specifically in the bcmgenet module. The issue arises due to the compiler's optimization of register read and write operations, which can cause problems with the ordering of packet data and in-memory rings/queues. This can lead to errors such as transmit queue timeouts. The vulnerability is related to the use of relaxed variants of register read and write operations, which can be reordered by the compiler, causing issues with device memory mapping and synchronization.

Recommendations To resolve the issue, use stronger register read and write operations, such as readl and writel, instead of the relaxed variants. This can help ensure proper ordering of operations and prevent errors. As a temporary workaround, consider adding dma mb() operations around the affected code to suppress timeouts, but note that this may not fully resolve the issue. A better approach is to use the safer readl and writel operations everywhere.